65979711893a6edc4aa76bbcada81730b442a99034ea35810260a938ceeeaa44 | Triage

Sharing

General

Target

135c8d53347cbba977c50956b15efe6b_JaffaCakes118
Size

10KB
Sample

241004-pm7hwayand
MD5

135c8d53347cbba977c50956b15efe6b
SHA1

b94ca0ebb96829083841fb5a6ccdb35f6a6af70c
SHA256

65979711893a6edc4aa76bbcada81730b442a99034ea35810260a938ceeeaa44
SHA512

85914bbfa8781d05bf5d486f5e6975d182a8b65786b9cc0346a4d5089ac2f6f28fd356a703b4f4ee9c630bd846648f551ae58d0fdbf24333cea632ff34770507
SSDEEP

192:5Y8M102CZ7KMdBGSNIe5pVNoOuQhy+lnz7FWiG63OVTbpkgUwu:K8MavtrxyCrNoOFIay6Wbm

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  135c8d53347cbba977c50956b15efe6b_JaffaCakes118
- Size
  
  10KB
- MD5
  
  135c8d53347cbba977c50956b15efe6b
- SHA1
  
  b94ca0ebb96829083841fb5a6ccdb35f6a6af70c
- SHA256
  
  65979711893a6edc4aa76bbcada81730b442a99034ea35810260a938ceeeaa44
- SHA512
  
  85914bbfa8781d05bf5d486f5e6975d182a8b65786b9cc0346a4d5089ac2f6f28fd356a703b4f4ee9c630bd846648f551ae58d0fdbf24333cea632ff34770507
- SSDEEP
  
  192:5Y8M102CZ7KMdBGSNIe5pVNoOuQhy+lnz7FWiG63OVTbpkgUwu:K8MavtrxyCrNoOFIay6Wbm
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence